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SMART CARD NETWORK INTERFACE DEVICE 

FIELD OF THE INVENTION 
The pres^ invention relates to the field of svmt cards m general and in particular to a 
5 stand-alone device £or reading smart cards and transmitting information tfaerefiom. 

BACKGROUND OF IHE INVENTION 
Cuirently available smart card readers are typically integrated mto computers or 
configured as computer peripheral equipment, connected to the serial port of a personal 

10 computer^ for example. Smart card readers may also be integrated with cellular phone or set- 
top-boxes (TV), or built into other equipment such as bank temmals, and keyboards, for 
example. Generally, the host appliance, whether a computer, a cdlular phone, or a Set-Top- 
Box, is responsible for providing the netwoik interface. Normally smart card read^ rely on the 
host device to provide standard iiq)ut-oufcput (I/O) interfece for the human-user on top of the 

IS netwoik connectivity. The necesaty of a host device linuts the scope of smart card applications. 
For exainple, at present each caslner with each merchant site requires its own host device, such 
as a PC or a Point of Sale (POS) device^ in ord^ to read a card and if necessaiy inter&ce with 
the central computer syst^n. 

Cdlular phones may use the SIM chip of the phone itsdf as a smart card, but this usage 

20 is limited to a q)edfic application and does not allow for gen^-putpose smart card access. 
Alt^nativdy, a standard-size smart card read^ be integrated with the (cdlular) phone. In 
the latter case, the reader is dependent on ^edfic properties of the device or on the cellular 
service provider and therefore it is third party dependent The phone needs to be programmed to 
recognize each spedfic card in use, or altemativi^ the approval of cdlular telephone operator is 

25 required. 

Set-top-box applications are limited to a communicating via a unique server, for a 
specific card (the cable-operator card, or other pre-set cards), and human-interface is through the 
TV. 

There is thus a need for a stand-alone device does not need a separate host device, 
30 or be int^^ed in a host device, such as a computer, a POS, or a cdlular phone, for ^cample. 
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and vMch allows any standard card to establish a conunumcation with the appropriate server, to 
implement the desired smart card applications. 



cards, which incoiporates its own procesabg and network ioter&ce. The device may be 
int^irated mto a telephone or o&er netwodc-accessing device, wMch can capture the network 
connectivity. Furthennore, the gm^-puipose device aUows for access &r any 
for any smart card. Even when integrated into tdephones (cellular or landline), for example, the 

10 device does not have to rdy on q^ecific tdqihone properties nor on the service provider, but 
rather it provides a general-purpose network access over telephone, or ar^r other network media. 

The computing power of the card is used for handling the required application layers, 
while the computing on the device is used only for network interfeckig. The device provides 
communication inter&ces allowing the smart card to be expldted in its fijll potential, utilizing the 

15 security capabilrties of tiie smart card, and supporting authentication using tiie (optional) PIN 
. (Personal Identification Nund)er). Input and oiitput for the user n[iay be provided through either 
the telephone, or optionally, an on-device display and keyboard. 

In an embodiment of the pres^ invention, there is provided a device; which includes a 
smart card reader and a conununications inta£ice, and a cotrtroller that transfQ:s data betwem 

20 th^e two inter&ces. The conmuinications inter&ce may be at least one inter&ce includmg 
MODEM, infifa-red QRX Bhetnet, radio fiequmcy (KB), audio tones or any otha* 
communication me<£a, coupled to the smart card reader. 

In a fiutber embodiment of the present inv^on, there is provided a system for remotely 
verifying the identification (authentication) of the user of a smart card. The system indudes the 

25 smart card de^ce of the mveotion and a r^notely located servar in commurncation with the 
communications interface, the server having means for vOTfying the validity of the smart card 
being read by the smart card device, and other data keyed into the device. The remotely located 
server may fiirther comprise means for validating a certificate or means for generating a 
chaSenge that is then authenticated by the appropriate response fi*om the device. The remotely 

30 located server m^ fiirther comprise means for transferring e-goods or e-money. 



SUMMARY OF THE INVENTION 



5 



The present invention is directed to a stand-alone device for readu^ and writing smart 
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Furthennore, the smart card device may be configured to be coimectable between a 
telephone and the wall socket of a telephone line or to a cellular telephone. 

Furthermore, the communications inter&ce may indude at least one of a group including 
a MODEM, Ethernet, infi:a-red QR), RF and audio tones. 
5 Furthermore^ the smart card device way indude a display screa and a numeric and/or 

fiincttons keypad. The device may also include moyption means and a connector for exteroal 
devices. Hie external devices may indude a printer, a keypad and a biometric data reader. 

Furthermore, the power source m^ indude at least one esKsicgy source from a group 
including an internal battery, an external powi^ inl^ the communication media to which the 
10 device is coupled and a recharg^le battery. 

Furthennore, llie smart card device may indude at least one of a group induding a 
printer, a keypad and a biometric data reader int^rated within the device. The smart card 
device may further include at least one of a group of processing components induding a 
additional computation capabilities, additional communication inter&ces and additional 
1 5 encryption capabilities. 

Furtheraiore, the smart card reader may include at least one memory component 
including Read Only Memory (ROM), Non-Volatile Memory (NVM) and Random Access 
Memory (RAM)- 

In another embodiment of the present invention, there is provided a method for verifying 
20 the identification of llie remote user of a smart card, the method indu^g the steps of inserting a 
smart card into a smart card dew:e of the invention, transmitting data to and fi'om the smart 
card, via the communications inter&ce, to a remotely located s^er, the remotdy located server 
transferring transaction information to the smart card device for ^roval, inputting privately 
known information into the smart card device and transoutting the proof of signature (certificate) 
25 to the rmiotely located server, and tiie remotdy located server verifying that the privately known 
information is the valid one for the card. 

In another embottoent of the present invention, there is provided a method for remotely 
purchasing goods or sendees, the method induding the steps of inserting a smart card into a 
smart card device of the invention, selecting an item to be purchased fi^om a suppli©", 
30 transmitting data read fi*om the smart card, via the communications inter&ce, to a remotety 
located server in commurucation witii the supplier, the r^otely located server transferring 
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transaction infonnation associated with Ihe purchase to the smart card device for approval, and 
storing the transaction information in the smart card. 

Furthermore, the method may include the step of authenticating the identity of the smart 
card user. The step of authenticating may include the steps of inputting privately known 
information, the smart card verifymg that the privately known information matdies the smart 
card data, and generating a certificate validating the transaction. 

Furthermore, the stq) of authenticating may be performed by the remotely located 

server. 

Furthennore, the transaction may involve e-goods, which can tiienbe stored on the card 
itself for a later use. 



The above and o&l& characteristics and advances of the invention will be better 
understood through the following illustrative and non-Iimitatrve detailed description of preferred 
embodiments thereof with reference to the appended drawings, whereiir 

Fig. 1 is a schematic illustration of a prior art exaniple of an operational environment for 
use with smart cards; 

Fig. 2 is a schematic illustration of a smart card devk)e constructed and operative 
according to an embodim^ of the invention; 

fig. 2a is a schematic illustration of the smart card de^ce of Hg. 2 hooked on to a 
standard tdq)hone; 

I^g. 3 is a schematic illustration of a smart card device, of Fig. 2 hooked onto a cellular 
tdq)hone; 

Fig. 4 is a flow chart illustration of the use of the smart card device of Fig. 2; 
fig. 5 is a sdi^natic illustration of a smart card device, according to another embodim^ 
of the invention; and 

Rg. 6 is a flow chart illustration of a ftirdier use of the smart card device of Fig. 2. 



BRIEF DESCRIPTION OF THE DRAWINGS 



DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 
Reference is now made to Fig. 1, vMch is a schematic iQustration of a prior art example 
of an operational environment for use with smart cards. 
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In the configuration of Kg. 1, a smart card 12, wMch may be inserted in a smart card 
reader 14 is in commumcation with a host device, such as personal computer (PC) 16. 
Communication between the card reader 14 and the host device 16 be via any poiphoal- 
device to PC commumcation inter&oe, for example an RS-232 communication interfece 18. A 
MODEM 20 is connected to host device 16. 

Data IS read from the smart card 12 by smart card reader 14 and transfetred via the 
paqjheral-device to communication interfece 18. The Host device 16 manage the interactions 
vnth the card, and Tishmdeared it transfos information from and to host device 16 to and from 
tiiecardl2. To transfer data onvraids, the modem 20 may comnnmicate widi a remote server 
22 via the Intemet 24, using any Ihtemet protocol, such as HTTP, for example, or secured 
protocols if desired In a similar prior-art configuration, the reader may be hooked to the cdlular 
phone, vviMi serves as a host, and carries much of the q)plication's logic. 

Reference is now made to Fig. 2, which is a schanatic illustration of a smart card device, 
general^ designated 50, according to an embodiment of the invaition. 

Smart card device 50 conqjrises a device contrdlo" 52 connected to a smart card reader 
64 and a MODEM 54. It wiU be predated by persons knowledgeable in the art that the 
MODEM m^ be replaced by any other networic inteifece component, such as Bhietooth, I-R, 
or Ediemet as examples. The controno- 52 m^ comprise nmumal processing capabilities, such 
as transfaring and correcfly pa±a^ one oomraunications protocol to another in order to 
control any of tiie embodied devices. Ihe memory may mdude Read Only Memory (ROM), 
Non- Volatile Memory (NVM) and Random Access Memory (RAM), for example. A smart 
caidreada-64 is connected to controller 52. 

In a fiulher embodment of the invention, anart card device 50 may fiiriher comprise a 
display 56 and nrinimal keypad havmg at least one key 58, or ports for attaching external 
equipment, such as an external keypad (not shown), or a printer. 

In yet additional embodimaits of tiie invention, die device m^ contain an encryption 
device such as a SIM 

In yet additional embodiments of the invention, the device m^ coirtain a battery or an 
external power source. Akenmtiw^, die ^edfic communication media, to which die device is 
attached, may provide tiie powo- supply for tiie device, cm- power m^ be supiJied fiom a 
combination of the above sources. 
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The smart card device 50 is configured to dM or hook into any network 66, such as a 
telephone network, for example, and cooplete a two-w^ protocol, with the servw 62. The 
servo- 62 may be ai^^ smtable network server, sudi as an Litetnet server, or an Interactive Voice 
Response server (IVRX depending on the desired network in use. In this embodiment, data is 
read torn the smart card 60 hy anart card reader 64 and transferred via MODEM 54 using 
voioe-MODEM protocol jfor CKample^ to IVR Saver 62. 

In an ejcemplaiy embodiment illustrated m Fig. 2a, the smart card device 50 may be 
coupled between a telephone mstiument 67 and the waD-sodcet of the tdqihrae line 68. 

Sanilariy, in an exoE^jlaiy embodimoit, illustrated in Fig. 3, a smart card device, 
gfflierafly desgnated 100 m^ be comected to a transceiver, such as a ceflular telephone 104, via 
aiiy of flie cdlular tel^hone inter&ces (sudi as, IR, ear-phone-speaker, or Bluetooth), and 
provide all the required access fimctions to a remote servo- 106. The remote server 106 may be 
an rVR or human service provide-, or an SMS server. 

Smart card device 100 comprises a controller 52 connected to a smart card reader 64 
(similar to the reader of fig. 2) and coupled to an infia-red (ER) transceiver 102, or any other 
inter&ce capable of bdbg supported by cdlular phones. 

In the embodimait of Fig. 3, the device 100 trananits and receives the data read by 
smart card reader 64 via the IR transceiver 102 to an IR transodvtt tocated within the celhj^ 
device 1 04, Tuttch m^ then act as a device controller for a sped&c plication For exan^)le, IR 
recdver 104 may cause the cefflular phone to trananit autbaiticati(Mi data read fixm the smart 
card 60 to rranote server 106, mag any of the cdhilar jUaoas channds. After secure 
identification of the user and verificadon that ID matches the data fix)m the smart card, the server 
106 smy authoii2S Ihe cdhilar ph<me 104 to intoact with another external device and perform a 
requested/authorized action, or alternatively, the server may directly instruct the device to 
provide die requested access. TTiis ecample is illustrative of the use of a smart card device of the 
present invention for buflding low-cost "gate-keepers" based on cellular connectivrty and smart 
card authaiiication capabilities. 

Jn an ahanative embofimad, the IR transceiver vntfiin the cdhilar phone 104 may allow 
the tdephone's display and keyboard to be used. The cdhilar phone m^ be used for M human 
dialogue with the serva- 106. 
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The operation of the smart card device may be described with reference to the flow chart 
of Fig. 4, to which reference is now made. The user establishes communication with the server 



as shown in the embodiment of Fig. 2, or by hooking to the LAN, or by airy other mean of 
joining the requested nrtwork. A transaction (deal) is n^tiated (step 201) or a service 
purchased or requested. 

Hie smart card may be required eiQier in older to compile tiie acceptance of the device 
into the network, in vAixh case a handshake may be required, or altemadvdy, the smart card 
may be required just for poformiiig the desired transactioa Ihe smart card 60 is inserted into 
the smart card device 50 (stq) 202), which reads the infijrmation on liie smart card (step 204). 
Altemativeily, some networks may require that the card be inserted before goods or a service is 
purchased. After the smart card is inserte4 the MODEM changes from voice mode to data 
mode, as is known in the art, so as to allow data to be transferred Alteniativdy, the network 
interface may select the appropriate transactional state. 

In the prior art, user idoitify is g^erally authenticated in the following manner: First, the 
user "identifies" himself for ^cample by stating his name (or by reading the open information on 
the card). Secondly, the user may be requested to show the card: ownership of the card is 
perceived as a proof of identity. Since cards may be lost; stol^ or copied - an additional proof 
is often required. This proof m^ conast of a PIN or secret information (such as the maiden 
name of Ibe card holder^'s motlierX or by biometric information, whidhi typicalty cannot be given 
to others, or a combination thereof 

In an embodiment of the inv^tion, the us^'s ownership of the card is proven by the 
insertion of the card into the device; the identity maybe forther aufhaiticated by transferring the 
smart card information to the service pro^dd^, and / or by usmg additional mean like PIN and / 
or biometric ideaitificatioa 

The PBSr may be keyed on a keyboard that forms an integral part of the device, an 
external keyboard or the tel^hone keyboard Biometric data (such as fingerprint, voice 
signature, iris pattern, hand palm, etc.) may be obtained using a biometric read®*, integrated in 
the device, or by external means, as is known in the art. 

The PIN and / or biometric data may be sent to the service provider(orto mediator card 
manager) as i% encrypted, or authenticated in the smart card itsdf In the latter case the 



of the service suppher (step 200). Commurrication may be established by dialing fi"om a phone, 
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authentication certificate is sent to the service provider, which may validate the certificate, as is 
known in the art. When encrypted for sending, the device may use the integrated SIM for 
OToyption, or use the enoyption engine of the smart card itself when possible. 

Typically, beades the need to identify the user/customer, the merchant or service 
5 provider needs to obtain proofofthe existence ofdie transaction, and its deta^ At present, this 
confirmation is obtained dther by having the customer sign a piece of paper where the 
transaction data is recorded, or by aerating a digital agnature. In an embocfiment of the 
invention, confirmation may be obtained as Mows: 

- The transaction information way be transferred to the device SO for the user's to 
1 0 review and / or to confirm and possibly also to store on tbe card. 

Confirmation may be obtained by keying a confirmation key (of the device, e?ctemal, 
or the telq)hone keyboard), keying tiie PIN, or a biometric reader. 

This information may be sent to the service provider in a way similar to sendiog the 
identification. 

15 In an embodiment of the invention,_confirmation may be obtained by g^erating an 

encrypted form, which 'combines' the transaction data and the authenticated identity. The 
'oxnbined form' is sometimes referred to as a digital sigDature. This ^itire sequence is also 
known as a ''challenge-response''^ mechanism. 

All of these identification and certification medianisms may be canied out accorcfing to 

20 the flow chart of Fig. 4, to wMch reference is now made. The transaction iofonnation is 
transfored to the device 50 and displayed for approval (step 206). (The transaction infonnation 
may also be stored in the card.) When tiie nsex^ types in his PIN (step 208), tiie card uses the 
transaction information and the PIN code in order to generate a digital proo^ or a certificate, or 
ahenmtively, the PIN m^ be sent to the server to be used for certification and authentication. 

25 The service provider (bank, for example) chedcs the auAentication of tiie user/caller 

(query box 210), either by validating tiie catificate, or by verifying the provided PIN. If the 
signature is valid (step 212), the SCTvice provider can then allow tiie us^/caller to proceed to 
ordo* a service (step 214), such as loading e-money into the smart card, or just proceeding with 
the convQ-sation with the same person in the service provider. Jf the certification or 

30 authentication processes Ms, the sa^ce provider may perform one of several steps, such as 
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requesting a retry to overcome errors, decline the transaction, abort the communication, or even, 
if authorized, disable the card (step 21 1). 

In a further example, the smart «ird device may be utilized as a cash-loading banking 
terminal, that is, as a remote service point for loading e-money into the smart card from a bank, 
for example. Oth^ applications will be desoibedhereinbdow. 

Referaice is now made to Fig. 5, whidh is a sdiematic iUustration of smart card device, 
according to another onbodiment of the inventioa Elements having amilar fimctions have been 
designated with similar numerals and will not be desoibed iiirth^. 

Fig. 5 is a sdionatic iDustralion of a smart card device, generally designated 70, 
according to an raibodiment of the invention. Smart card device 70 comprises a controller 52, 
which manages a smart card reader 60 (similar to the reader of fig. 2), and an Ethernet interface 
72 for a LAN 0-ocal Area Network) 74. In this embodiment, the smart card device 70 is 
configured to utilize the EthOTiet mterfece 72 and hook into a LAN 74, to access the Memet 
Server 62 direcdy fi-om the device 70. The smart card 64 and the lotem^ server 62 can complete 
a client-server application over the Internet and LAN wifliout any additional con5)uter for 
mediatioa The controUo- of the suMrt card device 70 ampfy acts as a coinmunication en^^ 
establishing the Hnk for a complete dient-sover configuration. 

In a fiirther embo(fiment of the invention, smart card device 70 majrfiirther comprise a 
display 56 and keyboard 58 (sinmlar to F^ 2). It may also contain an encryption module, such as 
aSBVL 

The smart card device illustrated in the aforemerfioned embodiments may be used in 
many different applications, as will now be desaibed by rrfermce to the nonJimiting exemplary 
applications hereinbdow. 

The smart card may be used for a remote credit/debit or pre-paid transactioa This allows 
for carrying out secure transactions fi-om home, la this case, the customer calls the merchant, 
inserts the card and the device at home and interacts directly with the POS at the merchant's 
shop. The merchant's POS may communicate with the credit card compaity to recrive 
authorization to charge the sale. This allows for eliminating one of the common fiaud means, 
namely Card Not Present (CNP), which mainly exists in the MOTO (mail order telephone 
ord^y By effectively presenting the card (by insaling it into the device), die merchant is 
assured that the customer cannot dispute the transaction. Entering the PIN m addition to the 
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standard credit card details adds a fiirther level of authentication, and provides a "sigjiature" on 
the transaction - this "signature" may be considered to be equivalent to a hand-writt^i signature. 



merchandise fix)m a supplier ow&r the telephone when the card is not present, that is, fte card is 



eflfectivdy present and have his card veiified fiom a remote location, as will be described with 
reference to the flow chart illustration of Fig. 6. 

The smart card device (of Fig. 2) is hooked on a phone-cord (step 302), connecting 
between the phone and the wall-socket (Fig. 2a). The user selects which service to dial into 
(stqp 304), such as shopping from a call center, or food delivery (pizza etc), or call-charge. The 
user inserts a smart card into the smart card device (stq) 306) allowing the merchant to receive 
data rdating to the user's smart card. The merchant verifies the auth^dty of the smart card 
(step 308). 

The user may activate a sdected combination of keys ufflng the numeric keyboard of the 
telq)hone or smart card device to id&atify a particular transaction oflEered by the merchant (step 
310). Hie transaction information is transfered to the smart card device and displayed for 
^proval(step312). llie transaction infisnnationnmy also be stored in the card 

The user optionally eaters a pOTonal ID (PIN) number (step 314), using device's 
keypad The personal m number (PI^Q^aay be a mendhamspe^ 

user by the mo-chant, or typically, it may be the card's PIN code. The use of the PIN is optional, 
dependmg on the merchant or caid-issuer's policy. There is no need to transmit PIN information 
over the phone, as the card performs the authentication. 

The use of the PIN provides an additional verification for the merchant (step 314) and 
may be required, brfore the transaction is approved (step 310), for example if the cost of the 
transaction is over some threshold. 

The merchant chedcs authenticity of the signature, using standard certificate procedures 
(digital signatures) of the user (qu^ box 316) and if the signature is ^proved (autiientication 
completed) (step 318), completes the sale (step 320). Otherwise, that is, if the digital signature is 
rgected (step 3 1 7), or if the card issuer or the "acquirer" disqualifies the card - the service may 



This turns the "card not presenf transacticms into a fiiUy approved transaction, therd>y 
preventing and redudng the level of fiaud. 

In an ^cemplaiy application, Ihe smart card device 50 may be used for buying 



not viewable by the suppKer, The use of the smart card device allows the purchase- to 
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be denied (that i% the transaction is rgected), or fiirther, the issuer may de-activate the card, 
using the issuer authority. This scenario be carried out remotely from any telephone. 

In an alternative application, the smart card device of the embodiment of Fig. 3 may be 
utilized with a cellular phone to make transactions. 



merchandise^ using the e-mon^ or coupons previously loaded and stored in the smart card. In 
this case, the card may be used for an e-cash opeiation (instead of as a credit/debit card) and 
communication is dinectiy to the on-line saver of a merchant supplying goods or ss^ices. 

in a fijrther ^emplaiy application, the user may utilize the e-money stored on the card 
for ordering telq)hone calls that avoid Ae necessity of purchasing prepaid cards, for example. 

In a further exemplary application, the smart card device may be used for general 
authentication purposes, such as authentication of the ID of a telephone caller. For example, a 
caller who wishes to verify his bank balance may be requested to enter his smart card and PIN 
number (as described hereinabove) before information is released over the telephone. The use of 
the smart card device thus adds a fiirther level of user authenticatioa The need to enter a PIN 
number into the device is optional, but gives an improved level of security over existing methods^ 
such as requesting personal information sudi as a passport numb^ or mother's maiden name, 
information which also be known to olh^ people. It will be appredated by persons 
knowledgeable in the art that the PIN needs not be transmitted but rather may be tested by the 
card localfy, and fiiitheniiore, all the communicated data may be enoypted as described 
h^einabove. 

In a further application of the present uiv^ition, the smart card device maybe installed 
at a merchant's point of sale (POS) such as a low-volume or mobile merchant's shop. In this 
case, the smart card device could be used as a regular credit/dd)it card or alternatively for e- 
money transactions. In this sc^iario, the smart card device may be in communication with the 
clearing-house server. This allows for removing the need for an expensive POS, as the device 
itself is capable of complying with payment regulations. 

In a fiirther application of the present invention, the smart card device of the present 
inveaition may be used in public transport sudi as rail, bus or fiOights. For example, tte smart 
card device may be used from home to order ffig^ rail or bus tickets and/or reserving seats. In 
this scenario, the user would call the transport company and purchase Ms tidcets and/or reserve 



In a fiirther ecemplary application, dte smart card device SO may be used for buying 
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seats uang his smart card inserted in the device, snoilar to the method described above with 
reference to the flow diarts of Figs 3 and 6. The purchase may be by credit or with e-money and 



merdiandize itself is also an dectromc one;, and Hierefore the transaction completion inchides the 
ddiveiy of the goods. 

The transport company (bus or rail) would then verify the purchase/reservation 
information by rcadic^ the traveler's smart card via contact read^ or SF transc^ver installed on 
buses or at the railwsQr statioa In a wnOax manner, the smart card may be used in the device to 
obtain e-coupons from suppliers, that is, coupons having monetary value for purchase of goods. 

The card authentication can be performed in several ways as described hereinabove with 
reference to Figs. 4 and 6. The device is transparent to the authentication requirements, as this is 
carried out dther by the card, or by the remote server. 

The above examples and description have of course been provided only for the purpose 
of illustration, and are not intaided to limit the invention in any way. It will be appreciated that 
numerous modification, aUofwhichMwithki the scope of the present invent Rather 
the scope of the mvention is defined by the claims that follow: 



the purdiase/reservation information would be stored in the card (e-ticket). In this case, the 
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CLAIMS 

We Claim: 

1 . A smart card device comprising: 

a controller; 

S a smart card reader in communication with said controQei; 

a communications inter&ce coupled to said controller, and 
a power source. 

2. The smart card device according to claim 1, configured to be connectable between a 
telephone and the wall sodcet of a telephone line. 

10 3. The smart card device accotding to claim 1, configured to be connectable to a cellular 
telephone, 

4. The smart card device according to claim 1, wherein said communications inter&ce 
comprises at least one of a group inchzding a MODEM, Ethernet, infira-red (IR), RF 
and audio tones. 

IS 5. The smart card device according to claim 1, fiirther comprising: 
a display screen; and 
a numeric and/or functions keypad. 

6. The smart card device according to claim 1, fiirther comprising: 
encryption means. 

20 7. The smart card device according to claim 1, wherein said power source comprises at 
least one energy source fi'om a group including an int^nal battery, an external power 
inlet, the communication media to which the device is coupled and a rechargeable 
battery. 

8. The smart card device according to claim 1, fiirther comprising a connector for 

25 e?ctemal devices, said external devices comprising any of a group including a printer, a 

keypad and a biometric data reader. 

9. The smart card device according to claim 1, fiirther comprising at least one of a group 
including a printer, a keypad and a biometric data reader integrated within the device. 
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10. The smart card device according to claim 1, whereia said smart card reader further 
comprises at least one of a group of processing components including a additional 
computation capabilities, additional communication inter&ces and addtional 
encryption capabilities. 

S 11. The smart card device according to claim 1 , \^^erein said smart card reader further 
comprises at least one memory component^ said at least one memory component 
comprising at least one of a group including Read Only Memory (ROM), Non- 
Volatile Memory (NVM) and Random Access Memory (RAM). 

12. A system for remotdy verifying the identification (authentication) of the user of a 
10 smart card, the system comprising: 

a smart card device, comprising: 
a controller; 

a smart card reader in communication with said controller; 
a communication network interface coupled to said controller, and 
15 a power circuit, and 

a remotely located server in communication with said communications 
interface comprising means for verifying the validity of the smart card being read 
by said smart card device or other data keyed into said device. 

13. The system according to claim 12, wherdn said rraiotefy located server further 
20 comprising means for validating a certificate or generating a '"challenge" and 

accepting the ^response" for said diallenge. 

14. The system accordmg to claim 12, wherem said other data comprises at least one of a 
group including a personal identification number (PIN) and biometric data. 

1 5. The system according to claim 12, wherdn said smart card device is configured to be 
25 connectable between a telephone and the wall socket of a telephone line. 

16. The system according to clmm 12, wherem said remotely located server is any one of 
a group including an Internet server and an Interactive Voice Recognition server 
(TVR), or a Point Of Sale (POS). 
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17. The system according to claim 12, wherein said communications interfece is at least 
one of a group including a MODEM, Ethonet, infra-red, RF, and audio tones. 

18. The system according to claim 12, i^dierein said smart card device is configured to be 
connectableto a cellular telephone. 

19. The system according to claim 12, wherein said smart card device further comprises: 

a display screen; and 

a numeric and/or functions keypad. 

20. The system according to claim 12, wherdn said smart card device further comprises: 

an enoyption module. 

21. The system according to claim 12, wherein said power source comprises at least one 
energy source from a group including an internal battery, an external power mlet, the 
communication media to which the device is coupled and a rechargeable battery. 

22. The ^em according to claim 12, wherein said smart card reader fiirth©- comprises at 
least one of a group of procesang components including an additional computation 
capabilities, additional communication interfeces and additional encryption 
capabilities. 

23 . The system accordmg to claim 12, wherein said smart card reader further comprises at 
least one memory component, said at least one memory component comprising at 
least one of a group including Read Only Memoiy (ROM), Non-Volatile Memory 
(NVM) and Random Access Memory (RAM). 

24, The system according to claim 12, wherein said remotely located server further 
comprises means for transferring e-goods or e-money. 

25 . A method for verifying the identification of the remote user of a smart card, the 
method comprising the steps of: 

inserting a smart card into a smart card device, said smart card device 
comprising: 

a controller; 

a smart card reader in communication with said controller, 
a communications interface coupled to said controller; and 
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a power source; 

transmitting data from the smart card, via said communications interface, 
to a remotely located server, 

inputting privately known information into said smart card device and 
transmitting said proof of signature (certificate) to said remotely located servo:; 



information is a valid one for the card. 

Tlie method according to claim 25, wherein said privately known information 
comprises at least one of a group including a personal identification number (PIN) and 
biometric data, or other personally known informatioa 

The mediod according to daim 25, wherdn said device contains a power source, said 
power source comprising at least one energy source fiom a group including an 
internal battery, an external power inlet, the communication mecfia to which the device 
is coupled and a rechargeable batteiy. 

The method according to daim 25, wherem said device also contains encryption 
means. 

The method according to claim 25, wherdn S£dd remotely located server transfers 
transaction information to said smart card device for approval. 

A method for remotely purchasing goods or services, the method comprising the 
steps of: 

inserting a smart card into a smart card device, said smart card device 
conq)rising: 

a controller; 

a smart card reader in communication with said controller; 

a communications interfece coupled to said controller; and 

a power source; 
selecting an item to be purchased fi:om a supplier, 
transmitting data read from the smart card, via said communications 
interface, to a remotely located server in communication vnth said supplier; 



and 



said remote]^ located server verifying that said privatdy known 
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said remotely located server transferring transaction information associated 



storing said transaction information in said smart card. 

The method according to claim 30, further comprising the step of authenticating the 
identity of the smart card user. 

The method according to claim 30, wherem said step of authenticating comprises the 
steps of: 

inputting privately known information; 

said smart card verifying that said privately known information matches the 
smart card data; and 

generating a certificate validating the transaction. 

The method according to claim 32, wherein said privately known information 
comprises at least one of a group including a personal identification nimiber (PIN) and 
biometric data. 

The method according to daim 32, wherein said step of authenticating is performed 
by said remotdy located server. 



with the purchase to said smart card device for approval; and 
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